Wiz Security analyzes all layers of the cloud stack to identify high-risk attack vectors to be prioritized and fixed.
Creating a Service Account for Wiz Security
Before configuring the Wiz Security connector in Lucidum, you must first create an API Key. Lucidum will use the API key to access the Wiz Security API.
To get the Wiz client ID and client secret:
Go to Settings > Service Accounts.
Click on Add Service Account and name the new service account, e.g. "Lucidum".
Optionally you can narrow the scope of this service account to specific projects.
Choose the permission read:resources and click Add Service Account.
Copy the CLIENT SECRET (you will not be able to copy it after this stage).
Copy the CLIENT ID (it will be visible under the service accounts page).
Configuring the Connector for Wiz Security
To configure Lucidum to ingest data from Wiz Security:
Log in to Lucidum.
In the left pane, click Connector.
In the Connector page, click Add Connector.
Scroll until you find the Connector you want to configure. Click Connect. The Settings page appears.
In the Settings page, enter the following:
URL (required): The URL of the Wiz API. API Endpoint URL can be retrieved from the user profile, for example,
Client ID (required) - Wiz API client ID.
Client Secret (required) - Wiz API client secret.
Verify SSL. For future use.
To test the configuration, click Test.
If the connector is configured correctly, Lucidum displays a list of services that are accessible with the connector.
If the connector is not configured correctly, Lucidum displays an error message.